safe6Sec/ShiroAndFastJson

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/safe6Sec/ShiroAndFastJson)

safe6Sec / ShiroAndFastJson

shiro加fastjson环境

☆149

Alternatives and similar repositories for ShiroAndFastJson

Users that are interested in ShiroAndFastJson are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,839Oct 20, 2023Updated 2 years ago
kezibei / fastjson_payload
View on GitHub
☆244Feb 28, 2026Updated last month
lemono0 / FastJsonParty
View on GitHub
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
☆1,195Jul 12, 2024Updated last year
cckuailong / JNDI-Injection-Exploit-Plus
View on GitHub
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
☆873Jun 24, 2024Updated last year
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,177Aug 21, 2025Updated 7 months ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
woodpecker-framework / ysoserial-for-woodpecker
View on GitHub
给woodpecker框架量身定制的ysoserial
☆616Oct 26, 2022Updated 3 years ago
Lonely-night / fastjsonVul
View on GitHub
fastjson 80 远程代码执行漏洞复现
☆199Sep 7, 2022Updated 3 years ago
ethushiroha / JavaAgentTools
View on GitHub
用Java agent实现内存马等功能
☆200Jul 27, 2023Updated 2 years ago
smallfox233 / JsonExp
View on GitHub
fastjson漏洞批量检测工具
☆362Jul 12, 2024Updated last year
Hutt0n0 / ActiveMqRCE
View on GitHub
用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用内存马注入
☆288Nov 20, 2023Updated 2 years ago
wgpsec / YongYouNcTool
View on GitHub
用友NC系列漏洞检测利用工具，支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等
☆586Aug 19, 2023Updated 2 years ago
c0olw / NacosRce
View on GitHub
Nacos JRaft Hessian 反序列化 RCE 加载字节码注入内存马不出网利用
☆848Jul 7, 2023Updated 2 years ago
vulhub / java-chains
View on GitHub
Java Vulnerability Exploitation Platform
☆2,028Updated this week
novysodope / fupo_for_yonyou
View on GitHub
用友漏洞检测，持续更新漏洞检测模块
☆479Jul 21, 2025Updated 8 months ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
ReaJason / MemShellParty
View on GitHub
一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
☆1,401Mar 30, 2026Updated last week
7BitsTeam / LearningAgentShell
View on GitHub
7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例
☆19Nov 13, 2022Updated 3 years ago
su18 / hack-fastjson-1.2.80
View on GitHub
☆525Sep 16, 2022Updated 3 years ago
veo / wsMemShell
View on GitHub
WebSocket 内存马/Webshell，一种新型内存马/WebShell技术
☆1,492Apr 10, 2023Updated 3 years ago
Getshell / Mshell
View on GitHub
Memshell-攻防内存马研究
☆956Apr 13, 2025Updated 11 months ago
yuyan-sec / RedisEXP
View on GitHub
Redis 漏洞利用工具
☆941Jan 26, 2025Updated last year
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,786Nov 1, 2023Updated 2 years ago
4nNns / CVE-2022-22947
View on GitHub
Spring-Cloud-Spel-RCE
☆12Sep 16, 2022Updated 3 years ago
webraybtl / zentaopms_poc
View on GitHub
禅道相关poc
☆172Jun 20, 2024Updated last year
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,314Jun 29, 2024Updated last year
Chanzi-keji / chanzi
View on GitHub
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability ru…
☆484Feb 1, 2026Updated 2 months ago
whocansee / FilelessAgentMemShell
View on GitHub
无需文件落地Agent内存马生成器
☆249May 30, 2024Updated last year
BeichenDream / GodzillaMemoryShellProject
View on GitHub
☆309Feb 27, 2025Updated last year
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,053Oct 7, 2022Updated 3 years ago
hosch3n / msmap
View on GitHub
Msmap is a Memory WebShell Generator.
☆586Apr 22, 2023Updated 2 years ago
SummerSec / ShiroAttack2
View on GitHub
shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
☆2,444Mar 28, 2026Updated 2 weeks ago
achuna33 / Memoryshell-JavaALL
View on GitHub
收集内存马打入方式
☆508May 20, 2022Updated 3 years ago
UltimateSec / ultimaste-nuclei-templates
View on GitHub
极致攻防实验室 nuclei 检测 POC
☆642Aug 1, 2023Updated 2 years ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 4 years ago
whwlsfb / cve-2022-22947-godzilla-memshell
View on GitHub
CVE-2022-22947 注入Godzilla内存马
☆211Apr 26, 2022Updated 3 years ago
jayus0821 / swagger-hack
View on GitHub
自动化爬取并自动测试所有swagger接口
☆1,170Dec 1, 2025Updated 4 months ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,016May 21, 2024Updated last year
passer-W / shc_bypass
View on GitHub
内存加载shellcode绕过waf
☆209Jul 25, 2022Updated 3 years ago
Lotus6 / ConfluenceMemshell
View on GitHub
Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎内存马注入
☆557Feb 1, 2024Updated 2 years ago
hosch3n / FastjsonVulns
View on GitHub
[fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
☆91Sep 2, 2022Updated 3 years ago